mkkeyserver
Use the mkkeyserver command to create a key server object.
Syntax
>>- mkkeyserver -- -- -ip --ip_address-- --+---------------+----> '- -port --port-' >-- --+------------------------------+-- --+---------+-- -------> '- -sslcert --certificate_file-' '- -name -' >--+------------+---------------------------------------------->< '- -primary -'
Parameters
- -ip ip_address
- (Required) Specifies the key server's IP address. The value must be in the form of a standard Internet Protocol version 4 (IPv4) or Internet Protocol version 6 (IPv6) address.
- -port port
- (Optional) Specifies the key server's TCP/IP port. The value must be a number 1 - 65535. The default value is the same as the default listening port used for key servers of the currently enabled type.
- -sslcert certificate_file
- (Optional) Specifies the key server's self-signed certificate. The value must be a file path string.
- -name
- (Optional) Specifies the key server object name. The value must be an alphanumeric string.
- -primary
- (Optional) Specifies the primary key server.
Description
This command creates a key server object.
The first key server object must be the primary object, which is created by specifying the -primary parameter. If key management is enabled, you must use the primary key server object to create keys.
When a key server object is created, it is automatically validated. If the validation is not successful, the command fails and an error message is displayed.
An invocation example
mkkeyserver -ip 10.0.1.54 -sslcert /tmp/isklm_public_server_cert.pem -primary
The resulting output:
Key Server, id [0], successfully created